Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Assist with other Security ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Assist with other Security ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Assist with other Security ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Assist with other Security ...
Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.
Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Assist with other Security ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Assist with other Security ...
Director, Security
Chicago, IL ยท On-site
Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.
Director, Security
Chicago, IL ยท On-site
Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.
Director, Security
Chicago, IL ยท On-site
Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.
Director, Security
Chicago, IL ยท On-site
Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.
Director, Enterprise Risk Management
$98K - $167K/yr
... Systems Security Professional (CISSP), Certificate in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Operations Risk Manager (ORM) or related certifications * Demonstrated ...
Director, Enterprise Risk Management
$98K - $167K/yr
... Systems Security Professional (CISSP), Certificate in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Operations Risk Manager (ORM) or related certifications * Demonstrated ...
Chief Security & Risk Officer
Chicago, IL ยท On-site
$26.91/hr
Security Officer - Surveillance & Protection We are looking for competent Security Officers to ... Position: Full-time / Part-time (as indicated) Risk Management Officer - We are seeking a friendly ...
New
Chief Security & Risk Officer
Chicago, IL ยท On-site
$26.91/hr
Security Officer - Surveillance & Protection We are looking for competent Security Officers to ... Position: Full-time / Part-time (as indicated) Risk Management Officer - We are seeking a friendly ...
New
Third Party Risk Manager
Chicago, IL ยท On-site
Strong knowledge of security domains such as auditing, policy, database security, firewall design and implementation, risk analysis, identity management, access management, cloud security, or web ...
Third Party Risk Manager
Chicago, IL ยท On-site
Strong knowledge of security domains such as auditing, policy, database security, firewall design and implementation, risk analysis, identity management, access management, cloud security, or web ...
Join a team where strong risk management and strong client partnership go hand in hand. As a Credit ... Familiarity with securities or over-the-counter derivatives exposures and related credit risk ...
Join a team where strong risk management and strong client partnership go hand in hand. As a Credit ... Familiarity with securities or over-the-counter derivatives exposures and related credit risk ...
Risk Management - Risk Associate
Chicago, IL ยท On-site
Join a team where strong risk management and strong client partnership go hand in hand. As a Credit ... Familiarity with securities or over-the-counter derivatives exposures and related credit risk ...
Risk Management - Risk Associate
Chicago, IL ยท On-site
Join a team where strong risk management and strong client partnership go hand in hand. As a Credit ... Familiarity with securities or over-the-counter derivatives exposures and related credit risk ...
Risk Management - Risk Associate
Chicago, IL ยท On-site
$125K - $140K/yr
Join a team where strong risk management and strong client partnership go hand in hand. As a Credit ... Familiarity with securities or over-the-counter derivatives exposures and related credit risk ...
Risk Management - Risk Associate
Chicago, IL ยท On-site
$125K - $140K/yr
Join a team where strong risk management and strong client partnership go hand in hand. As a Credit ... Familiarity with securities or over-the-counter derivatives exposures and related credit risk ...
Security Coordinator
Hodgkins, IL ยท On-site
$61K - $74K/yr
Security Risk Management * Conduct regular security audits and risk assessments to identify vulnerabilities and security gaps at the facility. * Identify, evaluate, and document security risks to the ...
Security Coordinator
Hodgkins, IL ยท On-site
$61K - $74K/yr
Security Risk Management * Conduct regular security audits and risk assessments to identify vulnerabilities and security gaps at the facility. * Identify, evaluate, and document security risks to the ...
Security Coordinator
Hodgkins, IL ยท On-site
Security Risk Management * Conduct regular security audits and risk assessments to identify vulnerabilities and security gaps at the facility. * Identify, evaluate, and document security risks to the ...
Security Coordinator
Hodgkins, IL ยท On-site
Security Risk Management * Conduct regular security audits and risk assessments to identify vulnerabilities and security gaps at the facility. * Identify, evaluate, and document security risks to the ...
The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures implemented for managed systems and applications, as well as support Third Party Risk ...
The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures implemented for managed systems and applications, as well as support Third Party Risk ...
Manager of IT Security
Elgin, IL ยท On-site
Risk management experience with proven ability to effectively apply risk principles to challenging ... Security
Manager of IT Security
Elgin, IL ยท On-site
Risk management experience with proven ability to effectively apply risk principles to challenging ... Security
Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a ...
Associates within TDRM are highly-skilled information security, cybersecurity, site reliability engineering, technology, data analyst, data scientist, and risk management professionals. They have a ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Research and recommend new or ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Research and recommend new or ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Research and recommend new or ...
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team * Research and recommend new or ...
Professional information security certifications (e.g., Certified Information Security Manager ... Risk Professional (CTPRP). * Experience working with enterprise GRC tools and automation.
Professional information security certifications (e.g., Certified Information Security Manager ... Risk Professional (CTPRP). * Experience working with enterprise GRC tools and automation.
Security Risk Management information
See Chicago, IL salary details
$10.66 - $16.24
2% of jobs
$16.24 - $21.83
0% of jobs
$21.83 - $27.42
1% of jobs
$27.42 - $33.01
1% of jobs
$33.01 - $38.59
1% of jobs
$42.78 is the 25th percentile. Wages below this are outliers.
$38.59 - $44.18
26% of jobs
$44.18 - $49.77
11% of jobs
The median wage is $51.76 / hr.
$49.77 - $55.35
22% of jobs
$55.35 - $60.94
9% of jobs
$61.38 is the 75th percentile. Wages above this are outliers.
$60.94 - $66.53
17% of jobs
$66.53 - $72.12
9% of jobs
$10
$51
$72
How much do security risk management jobs pay per hour?
What are the typical challenges faced by professionals in Security Risk Management, and how can they be addressed?
What is Security Risk Management?
What are the key skills and qualifications needed to thrive in Security Risk Management, and why are they important?
What is the difference between Security Risk Management vs Security Analyst?
| Aspect | Security Risk Management | Security Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Strategic, policy-focused, risk assessment | Operational, monitoring, incident response |
| Employer & Industry Usage | Organizations managing enterprise security risks | Security teams, cybersecurity firms, IT departments |
Security Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy development and strategic planning. In contrast, Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. Both roles are essential but differ in scope and responsibilities within the cybersecurity field.

Full-time
Medical, Dental, Vision, Retirement, PTO
Posted 8 days ago
Job description
To be considered for this position, applications and resumes are accepted only through our careers site by directly applying to the posted job. We do not accept unsolicited resumes or sales solicitations from staffing agencies. Any OCC employee wishing to submit a referral must do so through their Workday account. Any resume submitted outside of an active job posting will not be considered for employment.
What You'll Do:
The Associate Principal, Security Assurance is responsible for conducting various Security assessments, including collaboration with other Security teams to assess risk and requirements for new technology onboarding and PoCs, Third Party Security Assessments to support OCC's Third Party Risk Management team, assisting with oversight of the Security Observation Risk Tracking process, and special risk assessments as requested by Security leadership. This position includes supporting other Security Assurance team members in the development of these various risk assessments listed above.
Secondary responsibilities include assisting with oversight of configuration monitoring for CIS Benchmark control compliance on Windows/Linux platforms including new asset builds, preparation of monthly reporting metrics and materials for Security Assurance processes, assisting with management of team request intake, and assisting with review of risk observations, risk action plans, and risk acceptances from Operational Risk Management processes.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.
- Conducting Security risk assessments of OCC third parties and technologies
- Collaborate with the Security Engineering & Technology Integration and Threat Intelligence teams to assess risk and set security requirements for new technology onboarding and PoCs
- Assist with oversight of the Security Observation Risk Tracking process which includes processing security observations nominated from various sources, assessing risk ratings for observations, communicating observations to risk owners, and managing the observation lifecycle
- Participate in Security review and oversight of configuration monitoring process for Windows and Linux platforms including review of compliance reports for new asset builds and operating system base images
- Participate in Security review and approval of Linux server privilege elevation requests
- Prepare monthly reporting metrics and materials related to the Security Observation Risk Tracking process for inclusion with other reporting targeted at executive and Board audience
- Assist with team request intake such as reviewing new technology requests for risk assessment applicability
- Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team
- Assist with other Security Assurance Program efforts including but not limited to tracking of remediation and validation of audit, compliance, and regulatory findings as needed.
- Assist Security Analysts, transferring technical and risk management knowledge
- Perform other duties as assigned
Supervisory Responsibilities:
- None
Qualifications:
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.
- Effective oral and written communication, analytical, judgment and collaboration skills.
- Analytical skills to successfully analyze, model, and present complex risk assessments
- Ability to work independently and effectively with local and remote OCC staff, management, vendors, and consultants while exercising sound judgment
- Strong understanding of information technology, risk management concepts, and analytics
- Possesses critical OCC values (i.e., fact based, collaborative, credibility/trust and judgment).
Technical Skills:
- Advanced understanding of information related frameworks and standards such as COBIT, NIST 800-53, NIST CSF, ISO etc.
- Experience in security risk management principles and practices.
- Experience in working with regulatory frameworks and requirements relevant to OCC such as, Reg SCI, CFTC 99.18, etc.
- Experience working in ServiceNow, Tableau, Archer GRC, Jira, and Confluence
Education and/or Experience:
- 5 years hands-on Information Security experience, preferably within previous work in Compliance, Audit, Risk Management, or Security.
- Bachelor's degree in Computer Science, Management Information Systems, Statistics & Quantitative Modeling, Mathematics a plus or the equivalent combination of education and/or relevant experience.
Certificates or Licenses:
- Professional network and/or security certifications are a plus, but not required (i.e., GIAC, CISSP, CISA, CISM, CRISC, AWS cloud computing)
About Us
The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.
Benefits
A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:
- A hybrid work environment, up to 2 days per week of remote work
- Tuition Reimbursement to support your continued education
- Student Loan Repayment Assistance
- Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely
- Generous PTO and Parental leave
- 401k Employer Match
- Competitive health benefits including medical, dental and vision
Visit https://www.theocc.com/careers/thriving-together for more information.
Compensation
- The salary range listed for any given position is exclusive of fringe benefits and potential bonuses. If hired at OCC, your final base salary compensation will be determined by factors such as skills, experience and/or education.
- In addition, we believe in the importance of pay equity and consider internal equity of our current team members as part of any final offer.
- We typically do not hire at the maximum of the range in order to allow for future and continued salary growth. We also offer a substantial benefits package as noted on www.theocc.com/careers
- All employees may be eligible for a discretionary bonus. Discretionary bonuses are based on various factors, including, but not limited to, company and individual performance and are not guaranteed.
Salary Range
$116,100.00 - $158,300.00
Incentive Range
8% to 15%
This position is eligible for an annual discretionary incentive compensation award, for which the target range is listed above (see Incentive Range). The amount of such award, if any, will be based on various factors, including without limitation, both individual and company performance.
Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.
Step 2
You will receive an email notification to confirm that we've received your application.
Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
For more information about OCC, please click here.
OCC is an Equal Opportunity Employer